Explore compiler options hardening techniques for C and C++ programs in this informative conference talk by Georg Kunz from Ericsson. Learn about the OpenSSF's Compiler Options Hardening Guide, which aims to help developers make informed choices to enhance software security. Discover why memory-safety issues in C and C++ programs are a significant source of vulnerabilities and understand the challenges of transitioning to memory-safe languages in embedded devices and industrial controls. Gain insights into how modern compilers like GCC and LLVM implement mechanisms to detect, mitigate, and prevent memory-safety issues. Examine the current structure of the guide and potential future extensions, with an invitation for community feedback to shape collaborative efforts in improving C and C++ software security.
Overview
Syllabus
Compiler Options Hardening for C and C++ - Georg Kunz, Ericsson
Taught by
OpenSSF